on 07-22-2014 6:47 AM
We have an application in which we are authenticating with Active Directory.
In the same application we have an embedded browser in which we are opening SAP WebGUI(ITS) using following URL :
" http://SAP Host Name:HTTP Port/sap/bc/gui/sap/its/webgui/!?sap-client=XXX&sap- user=XXXX&sap- password=XXX "
Limitation of this approach:-
a) With in URL we are sending Username and Password in plain text form
b) SAP-User name and SAP-Password each time when user want to open the SAP Screen using SAP WebGUI(ITS) which is against SSO approach.
Our Requirement
Open SAP WebGUI(ITS) using following URL :
" http://SAP Host Name:HTTP Port/sap/bc/gui/sap/its/webgui/!?sap-client=XXX "
And approach which we want to use for the SSO is SAP Logon Tickets.
Please guide if there is any way to obtain SAP Logon Ticket in the application and store the same
in Web Browser and then launch SAP WebGUI(ITS) in the browser and get authenticated using the same SAP Logon Ticket.
You need to use Integrated Windows Authentication (also known as HTTP Negotiate / RFC 4559 or sometimes incorrectly referred to as SPNEGO).
If you do, a user will be authenticated using the credentials they were issued when when they logged onto their workstation, and a SAP logon ticket will be issued so that subsequent pages accessed won't require them to authenticate again.
Thanks
Tim
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
23 | |
11 | |
9 | |
8 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.